Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-14596

Uncontrolled Search Path Element vulnerability in Altera Quartus Prime Pro Installer (SFX) on Windows allows Search Order Hijacking.This issue affects Quartus Prime Pro: from 24.1 through 24.3.1.

Published

2026-01-07T02:02:59.543

Last Modified

2026-01-12T15:16:51.687

Status

Analyzed

Source

04c0172e-9735-4a9d-a92a-fe01fa863447

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses

Type: Secondary
CWE-427

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	intel	quartus_prime	< 25.1	Yes
Operating System	microsoft	windows	-	No

References

https://www.altera.com/security/security-advisory/asa-0004 Vendor Advisory (04c0172e-9735-4a9d-a92a-fe01fa863447)